...ight after getting Splunk Enterprise installed on their local machine. It can be daunting to log into Splunkfor the first time and know what the heck you should do. A person can get through the i...
Hi There, I am currently trying to set up specific events to be sent to a separate index. The documentation on how to do this was quite confusing for me. I assume I am making a very obvious m...
...essage has changed.
There is an option to forward data to a TCP socket but what do I need on the other end to write the archive and what format is the data in? Has the data been modified by Splunk b...
I've written an application that outputs data that I would like to index. Of course, I have a series of requirements.
First, I'd like to extract the host and the sourcetype from the file.
I a...
I had encoutered an interesting question from my client/security SME 1. Which one is better. To have Splunk Security Essentials or to retain Enterprise Security + Content updates? 2. Where are t...